Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c8c8af7a-e466-4252-9102-883597fbe3ee/0/3130332e3131322e3233352e302f32342d3234203d3e20313530343736.roa
File: 3130332e3131322e3233352e302f32342d3234203d3e20313530343736.roa (raw, json)
Hash identifier: RzhphyT5zwt2TJvIRx0fqPOHengk5q7VHYX7bxwIQzU=
Subject key identifier: EB:4C:D3:FD:1D:CD:1B:99:B9:AA:75:71:47:0A:C2:02:AB:ED:78:59
Certificate issuer: /CN=7C4CED4E60170CCE711624802DD8A811A1562077
Certificate serial: 3D155DC7EE7F925953EA9EFD002CF64AE4D591F0
Authority key identifier: 7C:4C:ED:4E:60:17:0C:CE:71:16:24:80:2D:D8:A8:11:A1:56:20:77
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7C4CED4E60170CCE711624802DD8A811A1562077.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c8c8af7a-e466-4252-9102-883597fbe3ee/0/3130332e3131322e3233352e302f32342d3234203d3e20313530343736.roa
Signing time: Mon 13 Jan 2025 09:00:00 +0000
ROA not before: Mon 13 Jan 2025 08:55:00 +0000
ROA not after: Mon 12 Jan 2026 09:00:00 +0000
asID: 150476
IP address blocks: 103.112.235.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:15:5d:c7:ee:7f:92:59:53:ea:9e:fd:00:2c:f6:4a:e4:d5:91:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7C4CED4E60170CCE711624802DD8A811A1562077
Validity
Not Before: Jan 13 08:55:00 2025 GMT
Not After : Jan 12 09:00:00 2026 GMT
Subject: CN=EB4CD3FD1DCD1B99B9AA7571470AC202ABED7859
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:3c:5e:6d:d9:c5:48:d8:1f:8d:7b:d9:2f:50:
13:de:12:5d:90:8b:e0:d0:c1:28:31:9a:35:6a:73:
35:60:f9:ce:53:03:28:36:60:19:8c:26:56:fb:f5:
3b:a4:67:3f:b3:7c:09:40:4f:f8:65:ee:35:ae:49:
a1:cf:7a:a8:3f:0c:cb:bf:2d:d6:3a:4f:46:5d:ab:
b4:c1:6a:3f:ba:46:46:0d:a0:7c:b6:9d:8a:08:09:
15:a9:30:12:08:4e:2c:4d:a3:6e:ab:7c:a8:bb:47:
ce:f5:74:66:c4:b4:ed:6d:c4:ea:b0:67:cc:a1:5c:
22:53:86:87:3b:bf:22:a5:b6:c6:13:3d:58:ce:ef:
e8:2d:d6:4d:c9:bb:f5:91:5d:b8:b5:c2:e8:8c:df:
87:bf:b8:90:d0:8b:d7:cf:fc:db:58:94:52:9e:ac:
b4:6d:dd:ec:0c:9e:0e:e5:04:62:49:76:33:f8:d6:
49:87:f8:4a:72:92:6b:d4:1f:fc:e8:37:89:a2:c1:
74:c9:8a:f5:88:4a:9c:bc:f4:2c:d7:8c:88:bd:c7:
00:6d:79:08:e5:80:35:ae:47:49:40:39:59:8d:47:
f0:38:0c:0e:f7:fb:de:5b:03:f6:56:02:e4:f3:f2:
9e:d2:7e:2e:b5:83:8e:02:3f:29:cf:77:09:70:1b:
51:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:4C:D3:FD:1D:CD:1B:99:B9:AA:75:71:47:0A:C2:02:AB:ED:78:59
X509v3 Authority Key Identifier:
keyid:7C:4C:ED:4E:60:17:0C:CE:71:16:24:80:2D:D8:A8:11:A1:56:20:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c8c8af7a-e466-4252-9102-883597fbe3ee/0/7C4CED4E60170CCE711624802DD8A811A1562077.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7C4CED4E60170CCE711624802DD8A811A1562077.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8c8af7a-e466-4252-9102-883597fbe3ee/0/3130332e3131322e3233352e302f32342d3234203d3e20313530343736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.112.235.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:c5:0b:db:1c:01:4c:f0:af:23:40:c1:c0:cb:cc:7d:98:21:
63:93:34:ea:9c:ba:f5:7c:66:5e:0e:31:04:71:97:07:95:a7:
80:f6:db:a0:c6:50:57:e7:c7:e6:3b:8c:80:a6:7d:06:3a:3a:
ef:14:18:09:6e:17:22:b0:9d:9e:f8:1b:73:80:3c:cf:02:7f:
fe:3b:ef:3c:41:d1:79:0a:d5:db:26:89:56:2a:50:62:91:ef:
f4:e5:39:e9:eb:60:a2:82:17:e2:73:5a:77:3f:eb:be:36:cc:
8a:42:c5:54:17:a4:5b:94:16:72:f8:9b:6a:7c:c9:eb:3e:79:
eb:79:2d:07:36:86:57:f8:82:9e:64:02:a0:53:b5:f6:4a:fa:
27:c6:0e:4c:3d:7f:ba:58:c1:75:9b:85:c9:00:e2:53:41:32:
6e:b7:03:38:fa:9d:19:5c:8f:5d:58:48:6a:a4:b2:fe:1e:37:
71:cf:aa:9f:57:a6:0e:38:d5:e8:b0:78:0c:72:a6:7a:d8:f0:
49:41:c7:86:65:d1:5b:91:84:00:48:7b:17:2b:fc:35:3d:40:
3c:22:0c:72:66:2d:b0:c5:ad:66:93:d7:10:e7:af:33:cc:84:
84:e8:e4:6c:e3:75:fc:c6:a6:42:16:8a:47:7c:93:f0:18:5f:
8f:72:09:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:43:52 2025 by rpki-client